ESXi 5.0 < Build 608089 Multiple Vulnerabilities (remote check)

This script is (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote VMware ESXi 5.0 host is affected by multiple security
vulnerabilities.

Description :

The remote VMware ESXi 5.0 host is affected by the following security
vulnerabilities :

- Errors exist in the included libexpat related to
UTF-8 sequences that could allow denial of service
attacks. (CVE-2009-3560, CVE-2009-3720)

- An integer overflow exists in the function
'BZ_decompress' in the file decompress.c that could
allow arbitrary code execution. (CVE-2010-0405)

- Various overflow errors exist in the Audioop Module
in the file audioop.c. (CVE-2010-1634)

- An input validation error exists in the Audioop Module
related to a call to audioop.reverse that could allow
denial of service attacks. (CVE-2010-2089)

- An error exists related to urllib/urlib2 that could
allow denial of service attacks or information
disclosure. (CVE-2011-1521)

See also :

http://kb.vmware.com/kb/2011432
http://www.vmware.com/security/advisories/VMSA-2012-0001.html
http://www.vmware.com/security/advisories/VMSA-2012-0005.html

Solution :

Apply ESXi500-201203101-SG.

Risk factor :

Medium / CVSS Base Score : 6.4
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P)
CVSS Temporal Score : 5.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true